← Back to all jobs
Twilio

Security Engineer, Incident Response

Twilio

4h ago

0DevUnited Kingdomhimalayas
Security-EngineeringIncident-ResponseCybersecuritySecurity-OperationsCloud-SecuritySenior-Incident-Response-AnalystSecurity-EngineerSecurity-Incident-Response-Team-ManagerIncident-Response-SpecialistSenior

Job Description

Who we are At Twilio, we’re shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences.Our dedication to remote-first work, and strong culture of connection and global inclusion means that no matter your location, you’re part of a vibrant team with diverse experiences making a global impact each day. As we continue to revolutionize how the world interacts, we’re acquiring new skills and experiences that make work feel truly rewarding. Your career at Twilio is in your hands. We use Artificial Intelligence (AI) to help make our hiring process efficient. That said, every hiring decision is made by real Twilions!.See yourself at TwilioJoin the team as Twilio’s next Security Engineer, Incident ResponseAbout the jobThe Security Incident Response Team (SIRT) is looking for a Security Engineer who is passionate about solving Twilio’s mission of security and reliability by working across the organization to lead the technical response to security events and incidents across Twilio’s global infrastructure, services and applications by effectively conducting triage, containment, remediation and driving post-incident betterments. You will work within a team that partners with R&D Engineering and R&D Business teams to develop scalable processes and technical solutions. You will be a valued member of a team of deeply technical Security Engineers to focus on creating bespoke and standard Security response processes, enhancing our capabilities for threat mitigation and incident response, and then automating as much as you possibly can (and more)! You will help us to grow our global, scaled team and program.ResponsibilitiesIn this role, you’ll:Lead and support the response to all security events and incidents across Twilio’s complex global infrastructure, services and applications.Be responsible for documentation of incidents and projects you work on and craft best practices as runbooks and standard operating procedures to share knowledge across teams.Work cross-collaboratively to understand and help solve challenges related to a broad spectrum of threat actors and activity.Work to improve Twilio’s security and reliability posture by driving identified betterments from security events and incidents.Rapidly acquire new technical skills and knowledge in a fast-paced, highly disruptive industry environment.Own the security incident lifecycle, respond to incidents and participate in on-call rotation and participate in RCAs for security incidents.Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team’s work.Provide mentorship, support, and care for the team in a way that enables long-term career development, happiness, and success at scale.Qualifications Twilio values diverse experiences from all kinds of industries, and we encourage everyone who meets the required qualifications to apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table!Required:Proven experience: 3+ years of security incident response in a production-cloud environment Subject-matter expert on security issues and technologiesAbility to utilize AI for comprehensive, complex security incident response activities delivering high fidelity detectionsAdvanced knowledge of service-oriented architectures, as well as experience with security tools and technologies fit for a cloud environmentExperience working across a technology stack on difficult security challenges and initiativesExperience with SIEM platforms and the ability to extend their functionalityExperience with SOAR tools and automating manual security processesExperience in either AWS, GCP, or other large cloud platformExcellent written and verbal communication skillsAbility to influence and build effective working relationships with every level of the organization.Desired:AI Model Security & Posture Management: Support Implementation of controls and safeguards to prevent AI vulnerabilities, such as prompt injections, model evasion, and data poisoningAI-Driven Threat Response: Utilize GenAI and LLM-based security use cases to rapidly interpret alerts, reduce false positives, and contextualize threat dataArtifact & Evidence Triage: Collects intrusion artifacts and forensically sound images to analyze malware, trojans, and source code.Threat Intelligence Integration: Monitors external vendor data and threat intelligence to analyze trends and proactively defend against emerging risks.LocationThis role will be remote, and based in Ireland or U.K.Travel We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasio